Our NetWare 6.5 server that sits on the internet (1 public NIC and 1 private NIC) often receives several failed login attempts on the admin user account. Initially I thought that this was from a script running with an incorrect password, but a packet scan revealed that these are malicious attempts from internet IP addresses to gain access to our sever (mostly through FTP it seems).

My question is, is there a way to block the authentication of the admin user from the internet NIC all together?

We do use FTP and I would like to still have end users be able to have access, but there is really no need for the admin account to have access. Since all the failed attempts are always on admin, it would be comforting if authentication could be disabled all together to thwart the attempts of external malicious users.

Thank you for your help,